Commit 7ff0ddfd authored by Joerg Roedel's avatar Joerg Roedel Committed by openeuler-sync-bot
Browse files

x86/sev: Check IOBM for IOIO exceptions from user-space 

stable inclusion
from stable-v5.10.199
commit 5bb9ba7dafbe18e027e335f74372ca65f07f7edd
category: bugfix
bugzilla: https://gitee.com/src-openeuler/kernel/issues/I8BCTB
CVE: CVE-2023-46813

Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=5bb9ba7dafbe18e027e335f74372ca65f07f7edd



--------------------------------

Upstream commit: b9cb9c45

Check the IO permission bitmap (if present) before emulating IOIO #VC
exceptions for user-space. These permissions are checked by hardware
already before the #VC is raised, but due to the VC-handler decoding
race it needs to be checked again in software.

Fixes: 25189d08 ("x86/sev-es: Add support for handling IOIO exceptions")
Reported-by: default avatarTom Dohrmann <erbse.13@gmx.de>
Signed-off-by: default avatarJoerg Roedel <jroedel@suse.de>
Signed-off-by: default avatarBorislav Petkov (AMD) <bp@alien8.de>
Tested-by: default avatarTom Dohrmann <erbse.13@gmx.de>
Cc: <stable@kernel.org>
Signed-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: default avatarYu Liao <liaoyu15@huawei.com>
(cherry picked from commit 8f996743)
parent fd6fe750
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment